$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/FA272BC67EBE11EEABD00B4DC4F9AE02.roa File: FA272BC67EBE11EEABD00B4DC4F9AE02.roa (raw, json) Hash identifier: Is2ym6G52Gd8iJAmBag68kzO/t9tRYX/H4mMynU8bi4= Subject key identifier: 96:5B:37:17:1C:26:3D:FD:64:80:F0:E4:AB:21:8B:9E:91:F6:87:12 Certificate issuer: /CN=A91DF31D/serialNumber=4600C18D62C6F724D5C95506F41B8C95FC390DC0 Certificate serial: 0158 Authority key identifier: 46:00:C1:8D:62:C6:F7:24:D5:C9:55:06:F4:1B:8C:95:FC:39:0D:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/FA272BC67EBE11EEABD00B4DC4F9AE02.roa Signing time: Fri 25 Jul 2025 04:40:54 +0000 ROA not before: Fri 25 Jul 2025 04:40:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151802 IP address blocks: 103.226.26.0/24 maxlen: 24 103.226.27.0/24 maxlen: 24 2401:ce0:a100::/40 maxlen: 40 2401:ce0:a200::/40 maxlen: 40 2401:ce0:aa00::/40 maxlen: 40 2401:ce0:ab00::/40 maxlen: 40 2401:ce0:beef::/48 maxlen: 48 2401:ce0:face::/48 maxlen: 48 2401:ce0:fade::/48 maxlen: 48 2401:ce0:faee::/48 maxlen: 48 2401:ce0:fafe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.crl rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF31D, serialNumber=4600C18D62C6F724D5C95506F41B8C95FC390DC0 Validity Not Before: Jul 25 04:40:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68830ad6-5a47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2f:0b:41:87:8f:78:7e:1c:75:df:ce:26:81: 98:b8:be:5e:ba:6d:1f:8d:22:27:a2:ea:06:50:a6: 49:c8:d6:bb:6f:db:8d:1b:94:ff:6d:ac:c9:bf:bf: ba:68:85:c3:9f:3b:1f:6d:04:b4:e2:12:4b:70:71: 34:47:ca:7e:fd:4c:6f:97:db:f0:ba:3b:79:6b:4d: 1d:cc:44:c4:9a:07:fa:55:84:5d:76:6f:34:f5:d5: ab:ab:0e:d4:69:a2:95:39:6a:76:88:48:52:a2:19: 87:be:57:e3:eb:fc:93:df:e8:41:1c:14:0b:a2:ea: 5e:c2:87:e8:90:02:b4:db:cd:2c:3d:f0:ec:c9:cb: 90:c2:62:e0:c4:8a:63:71:55:10:c7:0b:31:13:96: f2:a1:97:b4:4a:ff:1f:d0:0f:aa:5a:24:c0:e2:12: ab:20:95:74:eb:b5:7a:d7:9e:ca:1e:28:11:03:5e: 63:4a:d7:2e:df:e8:47:4e:09:7e:3b:63:78:62:1c: 6b:e2:a7:3f:41:6f:b2:64:f5:f5:dc:c0:19:2a:7e: c4:d5:a3:ea:d4:07:10:7b:47:46:17:ce:2b:f1:ae: f5:12:f6:84:f7:2e:bc:bd:de:ae:62:fc:d6:ce:9d: 7a:fb:ae:68:7a:f1:95:4e:3a:ee:f7:0f:dd:5a:ed: 69:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5B:37:17:1C:26:3D:FD:64:80:F0:E4:AB:21:8B:9E:91:F6:87:12 X509v3 Authority Key Identifier: keyid:46:00:C1:8D:62:C6:F7:24:D5:C9:55:06:F4:1B:8C:95:FC:39:0D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/FA272BC67EBE11EEABD00B4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.26.0/23 IPv6: 2401:ce0:a100::-2401:ce0:a2ff:ffff:ffff:ffff:ffff:ffff 2401:ce0:aa00::/39 2401:ce0:beef::/48 2401:ce0:face::/48 2401:ce0:fade::/48 2401:ce0:faee::/48 2401:ce0:fafe::/48 Signature Algorithm: sha256WithRSAEncryption bf:92:a6:4f:e0:2c:60:1a:78:2f:27:d3:3d:bd:48:1a:e1:c3: 73:40:40:a6:90:d7:2a:7f:4d:ec:69:61:a7:8f:7c:d1:5e:63: e3:c5:aa:d5:90:a2:70:87:7a:fe:db:b4:49:ba:7e:e0:a0:78: d7:62:c6:37:50:60:0f:d9:48:28:80:fd:97:fe:d7:81:79:ce: d4:08:ba:64:12:54:75:18:83:a0:25:3d:01:5f:3b:b2:32:e9: ec:01:d9:5c:68:4d:61:bd:8d:ce:d9:a3:92:39:4e:aa:18:38: e2:11:21:42:06:ff:37:8e:a4:15:e3:5d:9a:d8:34:4b:91:4d: 16:ad:40:ea:f4:f9:cd:d5:38:58:18:26:91:8d:89:13:28:15: 20:6e:c5:25:26:9b:aa:0d:df:29:07:31:04:16:fd:d6:c4:e3: e6:a6:6d:d8:4d:4a:37:32:a2:01:fa:af:df:0e:0b:0e:ba:f8: f2:25:a5:44:a4:16:c4:20:0b:51:98:9e:bf:7d:0b:44:dc:67: 87:57:fd:4f:53:bc:9e:13:03:d1:86:72:d4:eb:6d:29:f9:5b: 1e:ad:f8:12:04:68:85:c9:54:4c:8f:a6:a2:18:64:31:4c:39: 0e:f4:72:07:2f:86:43:64:2b:c8:89:a4:c8:fb:aa:94:ff:d7: cf:3f:14:17 -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYzMUQxMTAvBgNVBAUTKDQ2MDBDMThENjJDNkY3MjRENUM5NTUwNkY0MUI4Qzk1 RkMzOTBEQzAwHhcNMjUwNzI1MDQ0MDU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgzMGFkNi01YTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC8LQYePeH4cdd/OJoGYuL5eum0fjSInouoGUKZJyNa7b9uNG5T/bazJv7+6 aIXDnzsfbQS04hJLcHE0R8p+/Uxvl9vwujt5a00dzETEmgf6VYRddm809dWrqw7U aaKVOWp2iEhSohmHvlfj6/yT3+hBHBQLoupewofokAK0280sPfDsycuQwmLgxIpj cVUQxwsxE5byoZe0Sv8f0A+qWiTA4hKrIJV067V6157KHigRA15jStcu3+hHTgl+ O2N4Yhxr4qc/QW+yZPX13MAZKn7E1aPq1AcQe0dGF84r8a71EvaE9y68vd6uYvzW zp16+65oevGVTjru9w/dWu1p1wIDAQABo4IC5DCCAuAwHQYDVR0OBBYEFJZbNxcc Jj39ZIDw5Kshi56R9ocSMB8GA1UdIwQYMBaAFEYAwY1ixvck1clVBvQbjJX8OQ3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjMxRC8wNTVBQjU0NDdE RjcxMUVFODdCN0Q0MzBDNEY5QUUwMi9SZ0RCaldMRzl5VFZ5VlVHOUJ1TWxmdzVE Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JnREJqV0xHOXlUVnlWVUc5QnVNbGZ3NURjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYzMUQvMDU1QUI1NDQ3REY3MTFFRTg3QjdENDMwQzRGOUFFMDIvRkEyNzJCQzY3 RUJFMTFFRUFCRDAwQjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbgYIKwYBBQUHAQcBAf8E XzBdMAwEAgABMAYDBAFn4howTQQCAAIwRzAQAwYAJAEM4KEDBgAkAQzgogMGASQB DOCqAwcAJAEM4L7vAwcAJAEM4PrOAwcAJAEM4PreAwcAJAEM4PruAwcAJAEM4Pr+ MA0GCSqGSIb3DQEBCwUAA4IBAQC/kqZP4CxgGngvJ9M9vUga4cNzQECmkNcqf03s aWGnj3zRXmPjxarVkKJwh3r+27RJun7goHjXYsY3UGAP2UgogP2X/teBec7UCLpk ElR1GIOgJT0BXzuyMunsAdlcaE1hvY3O2aOSOU6qGDjiESFCBv83jqQV412a2DRL kU0WrUDq9PnN1ThYGCaRjYkTKBUgbsUlJpuqDd8pBzEEFv3WxOPmpm3YTUo3MqIB +q/fDgsOuvjyJaVEpBbEIAtRmJ6/fQtE3GeHV/1PU7yeEwPRhnLU620p+VserfgS BGiFyVRMj6aiGGQxTDkO9HIHL4ZDZCvIiaTI+6qU/9fPPxQX -----END CERTIFICATE-----Generated at Sun Aug 10 15:58:33 2025 by rpki-client